Remove bypass property
This commit is contained in:
parent
3d7cb08114
commit
fa2d97de25
GPG Key ID:
5D4196DA269EF520
@ -130,7 +130,6 @@ export default function () {
|
|||||||
|
|
||||||
const submitReq = await fetch("/api/reports/submit", {
|
const submitReq = await fetch("/api/reports/submit", {
|
||||||
body: JSON.stringify({
|
body: JSON.stringify({
|
||||||
bypass: false,
|
|
||||||
description: description || undefined,
|
description: description || undefined,
|
||||||
files: filelist,
|
files: filelist,
|
||||||
turnstileResponse: logged_in ? undefined : turnstileToken,
|
turnstileResponse: logged_in ? undefined : turnstileToken,
|
||||||
|
|||||||
@ -2,15 +2,8 @@ import { jsonError, jsonResponse } from "../../common.js";
|
|||||||
import upload from "../../upload.js";
|
import upload from "../../upload.js";
|
||||||
|
|
||||||
export async function onRequestPost(context: RequestContext) {
|
export async function onRequestPost(context: RequestContext) {
|
||||||
const {
|
const { description, files, senderTokenId, turnstileResponse, usernames } =
|
||||||
actions,
|
context.data.body;
|
||||||
bypass,
|
|
||||||
description,
|
|
||||||
files,
|
|
||||||
senderTokenId,
|
|
||||||
turnstileResponse,
|
|
||||||
usernames,
|
|
||||||
} = context.data.body;
|
|
||||||
|
|
||||||
if (!context.data.current_user) {
|
if (!context.data.current_user) {
|
||||||
if (typeof turnstileResponse !== "string")
|
if (typeof turnstileResponse !== "string")
|
||||||
@ -36,15 +29,6 @@ export async function onRequestPost(context: RequestContext) {
|
|||||||
if (!success) return jsonError("Captcha test failed", 403);
|
if (!success) return jsonError("Captcha test failed", 403);
|
||||||
}
|
}
|
||||||
|
|
||||||
const origin = context.request.headers.get("Origin");
|
|
||||||
if (!origin) return jsonError("No origin header", 400);
|
|
||||||
|
|
||||||
if (bypass && !(context.data.current_user?.permissions & (1 << 5)))
|
|
||||||
return jsonError("Bypass directive cannot be used", 403);
|
|
||||||
|
|
||||||
if (typeof bypass !== "boolean")
|
|
||||||
return jsonError("Bypass must be a boolean", 400);
|
|
||||||
|
|
||||||
if (!Array.isArray(usernames))
|
if (!Array.isArray(usernames))
|
||||||
return jsonError("Usernames must be type of array", 400);
|
return jsonError("Usernames must be type of array", 400);
|
||||||
|
|
||||||
@ -218,7 +202,6 @@ export async function onRequestPost(context: RequestContext) {
|
|||||||
created_at: Date.now(),
|
created_at: Date.now(),
|
||||||
fcm_token: typeof senderTokenId === "string" ? senderTokenId : undefined,
|
fcm_token: typeof senderTokenId === "string" ? senderTokenId : undefined,
|
||||||
id: reportId,
|
id: reportId,
|
||||||
open: !bypass,
|
|
||||||
user: currentUser
|
user: currentUser
|
||||||
? {
|
? {
|
||||||
email: currentUser.email,
|
email: currentUser.email,
|
||||||
@ -235,7 +218,7 @@ export async function onRequestPost(context: RequestContext) {
|
|||||||
await context.env.D1.prepare(
|
await context.env.D1.prepare(
|
||||||
"INSERT INTO reports (created_at, id, open, user) VALUES (?, ?, ?, ?);",
|
"INSERT INTO reports (created_at, id, open, user) VALUES (?, ?, ?, ?);",
|
||||||
)
|
)
|
||||||
.bind(Date.now(), reportId, Number(!bypass), currentUser?.id || null)
|
.bind(Date.now(), reportId, 1, currentUser?.id || null)
|
||||||
.run();
|
.run();
|
||||||
} catch {}
|
} catch {}
|
||||||
|
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user